Michael Genson
a025996b94
feat: Expanded safe HTML tags and attributes ( #2248 )
...
* expanded safe html tags and attrs
* removed style attr
* add note on sources of safe elements
---------
Co-authored-by: Hayden <64056131+hay-kot@users.noreply.github.com>
2023-03-21 11:49:41 -08:00
Michael Genson
666085b9ca
Fix: Print Preferences Menu Missing ( #2162 )
...
* fixed console errors for missing recipe prop
* restored print preferences to action menu
2023-02-21 19:00:22 -09:00
Michael Genson
53fe5921d2
chore: removed debug log ( #2137 )
2023-02-19 15:41:05 -09:00
Hayden
ae59f04b9f
fix: allow-iframe-embeds ( #2009 )
...
* allow embedding iframes
* fix alignment issue for buttons
2023-01-08 09:50:26 -09:00
Hayden
13850cda1f
security: multiple reported CVE fixes ( #1515 )
...
* update out of date license
* update typing / refactor
* fix arbitrarty path injection
* use markdown sanatizer to prevent XSS CWE-79
* fix CWE-918 SSRF by validating url and mime type
* add security docs
* update recipe-scrapers
* resolve DOS from arbitrary url
* update changelog
* bump version
* add ref to #1506
* add #1511 to changelog
* use requests decoder
* actually fix encoding issue
2022-07-31 13:10:20 -08:00
